Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

5

3a782d4286...18.exe

windows7-x64

7

3a782d4286...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a782d4286df1bf23a3d899ae907128a_JaffaCakes118

  • Size

    123KB

  • Sample

    241012-rmbgjsyhkk

  • MD5

    3a782d4286df1bf23a3d899ae907128a

  • SHA1

    0162037816ae460b0a788319740ead25a960896b

  • SHA256

    830dcb8c8025e29ebae8951b8e764265d6c98fd83edf889ca3bdadda313fb9a3

  • SHA512

    7bd1c487dea262c4dd00d36f076d83023556c473cacba8d9a7fc21b3079b4d7f766890f9c539b5c3619579221084e80730824a71950f325003ead50ce8c70bfe

  • SSDEEP

    3072:SKcWmjRrz3ZKcWmjRrz3TW+pIWiLURKE1G:hGyGi+sE1G

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      3a782d4286df1bf23a3d899ae907128a_JaffaCakes118

    • Size

      123KB

    • MD5

      3a782d4286df1bf23a3d899ae907128a

    • SHA1

      0162037816ae460b0a788319740ead25a960896b

    • SHA256

      830dcb8c8025e29ebae8951b8e764265d6c98fd83edf889ca3bdadda313fb9a3

    • SHA512

      7bd1c487dea262c4dd00d36f076d83023556c473cacba8d9a7fc21b3079b4d7f766890f9c539b5c3619579221084e80730824a71950f325003ead50ce8c70bfe

    • SSDEEP

      3072:SKcWmjRrz3ZKcWmjRrz3TW+pIWiLURKE1G:hGyGi+sE1G

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks